GCP Security Engineer (SecDevOps)

Job Description

Job Description

Position : GCP Security Engineer

Location : New York City, NY / Alpharetta, GA

Duration : Contract

Job Description :

We are seeking a skilled GCP Security Engineer specializing in SecDevOps to enhance our security posture across our Google Cloud Platform (GCP) environment.

In this role, you will collaborate closely with development and operations teams to integrate security practices into the DevOps pipeline.

Your expertise will help ensure the secure design, deployment, and management of cloud-native applications and infrastructure.

Key Responsibilities :

• Security Integration : Embed security practices into the CI / CD pipeline, ensuring that security is a core component of the software development lifecycle.
• Vulnerability Management : Conduct regular security assessments, vulnerability scans, and penetration testing on GCP resources to identify and mitigate security risks.
• Infrastructure as Code (IaC) : Develop and maintain secure IaC templates (e.g., Terraform, Cloud Deployment Manager) to automate provisioning and configuration of GCP resources securely.
• Monitoring and Logging : Implement security monitoring and logging solutions, utilizing tools such as Google Cloud Security Command Center and Stackdriver to detect and respond to threats.
• Incident Response : Collaborate with incident response teams to investigate and remediate security incidents in GCP environments.
• Access Control : Manage and enforce identity and access management (IAM) policies, ensuring least privilege access across GCP services.
• Compliance Assurance : Assist in ensuring compliance with relevant security standards and frameworks (e.g., CIS, NIST) within GCP.
• Security Awareness : Provide training and support to development and operations teams on security best practices and secure coding techniques.

Qualifications :